KEYCLOAK_CLIENTS = [
    {
        "id": "fa694007-ef2d-46e4-8e36-257ba5c23308",
        "clientId": "account",
        "name": "${client_account}",
        "rootUrl": "${authBaseUrl}",
        "baseUrl": "/realms/simpson-corp/account/",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "redirectUris": ["/realms/simpson-corp/account/*"],
        "webOrigins": [],
        "notBefore": 0,
        "bearerOnly": False,
        "consentRequired": False,
        "standardFlowEnabled": True,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": False,
        "publicClient": True,
        "frontchannelLogout": False,
        "protocol": "openid-connect",
        "attributes": {"realm_client": "False", "post.logout.redirect.uris": "+"},
        "authenticationFlowBindingOverrides": {},
        "fullScopeAllowed": False,
        "nodeReRegistrationTimeout": 0,
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
        ],
        "access": {"view": True, "configure": True, "manage": True},
    },
    {
        "id": "3c36cc2c-956b-4171-b076-250330547120",
        "clientId": "account-console",
        "name": "${client_account-console}",
        "rootUrl": "${authBaseUrl}",
        "baseUrl": "/realms/simpson-corp/account/",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "redirectUris": ["/realms/simpson-corp/account/*"],
        "webOrigins": [],
        "notBefore": 0,
        "bearerOnly": False,
        "consentRequired": False,
        "standardFlowEnabled": True,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": False,
        "publicClient": True,
        "frontchannelLogout": False,
        "protocol": "openid-connect",
        "attributes": {
            "realm_client": "False",
            "post.logout.redirect.uris": "+",
            "pkce.code.challenge.method": "S256",
        },
        "authenticationFlowBindingOverrides": {},
        "fullScopeAllowed": False,
        "nodeReRegistrationTimeout": 0,
        "protocolMappers": [
            {
                "id": "bf879c34-d9ef-4786-b3e4-3cd0a5117e1e",
                "name": "audience resolve",
                "protocol": "openid-connect",
                "protocolMapper": "oidc-audience-resolve-mapper",
                "consentRequired": False,
                "config": {},
            }
        ],
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
        ],
        "access": {"view": True, "configure": True, "manage": True},
    },
    {
        "id": "396ee90e-3db5-4bc9-bb1d-a9c119e8f7fb",
        "clientId": "admin-cli",
        "name": "${client_admin-cli}",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "redirectUris": [],
        "webOrigins": [],
        "notBefore": 0,
        "bearerOnly": False,
        "consentRequired": False,
        "standardFlowEnabled": False,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": True,
        "serviceAccountsEnabled": False,
        "publicClient": True,
        "frontchannelLogout": False,
        "protocol": "openid-connect",
        "attributes": {
            "realm_client": "False",
            "client.use.lightweight.access.token.enabled": "True",
        },
        "authenticationFlowBindingOverrides": {},
        "fullScopeAllowed": True,
        "nodeReRegistrationTimeout": 0,
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
        ],
        "access": {"view": True, "configure": True, "manage": True},
    },
    {
        "id": "a683628e-fb67-4228-b29e-248a1c8b63d1",
        "clientId": "admin-permissions",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "redirectUris": [],
        "webOrigins": [],
        "notBefore": 0,
        "bearerOnly": False,
        "consentRequired": False,
        "standardFlowEnabled": True,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": True,
        "authorizationServicesEnabled": True,
        "publicClient": False,
        "frontchannelLogout": False,
        "protocol": "openid-connect",
        "attributes": {"realm_client": "False"},
        "authenticationFlowBindingOverrides": {},
        "fullScopeAllowed": False,
        "nodeReRegistrationTimeout": 0,
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
            "shutdown-control",
        ],
        "access": {"view": True, "configure": False, "manage": False},
    },
    {
        "id": "d042a0a5-1776-434a-a318-3f14ccd07ac9",
        "clientId": "broker",
        "name": "${client_broker}",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "redirectUris": [],
        "webOrigins": [],
        "notBefore": 0,
        "bearerOnly": True,
        "consentRequired": False,
        "standardFlowEnabled": True,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": False,
        "publicClient": False,
        "frontchannelLogout": False,
        "protocol": "openid-connect",
        "attributes": {"realm_client": "True"},
        "authenticationFlowBindingOverrides": {},
        "fullScopeAllowed": False,
        "nodeReRegistrationTimeout": 0,
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
        ],
        "access": {"view": True, "configure": True, "manage": True},
    },
    {
        "id": "a8c34fe7-d67c-4917-b18a-a5058cf09714",
        "clientId": "burns-backdoor",
        "name": "",
        "description": "",
        "rootUrl": "",
        "adminUrl": "",
        "baseUrl": "",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "secret": "TINzO14xdnAiVwExDpQrVna7KosuFilZ",
        "redirectUris": ["/*"],
        "webOrigins": ["/*"],
        "notBefore": 0,
        "bearerOnly": False,
        "consentRequired": False,
        "standardFlowEnabled": False,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": True,
        "publicClient": False,
        "frontchannelLogout": True,
        "protocol": "openid-connect",
        "attributes": {
            "realm_client": "False",
            "oidc.ciba.grant.enabled": "False",
            "client.secret.creation.time": "1754739823",
            "backchannel.logout.session.required": "True",
            "standard.token.exchange.enabled": "False",
            "frontchannel.logout.session.required": "True",
            "oauth2.device.authorization.grant.enabled": "False",
            "display.on.consent.screen": "False",
            "backchannel.logout.revoke.offline.tokens": "False",
        },
        "authenticationFlowBindingOverrides": {},
        "fullScopeAllowed": True,
        "nodeReRegistrationTimeout": -1,
        "defaultClientScopes": [
            "service_account",
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
            "shutdown-control",
        ],
        "access": {"view": True, "configure": True, "manage": True},
        "service_account_user": {
            "id": "1859462c-4b8d-4e8f-9084-a5494a4f0437",
            "username": "service-account-burns-backdoor",
            "emailVerified": False,
            "enabled": True,
            "createdTimestamp": 1754739823551,
            "totp": False,
            "disableableCredentialTypes": [],
            "requiredActions": [],
            "notBefore": 0,
        },
    },
    {
        "id": "6876f461-9d47-4880-ae05-15c7023fbada",
        "clientId": "realm-management",
        "name": "${client_realm-management}",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "redirectUris": [],
        "webOrigins": [],
        "notBefore": 0,
        "bearerOnly": True,
        "consentRequired": False,
        "standardFlowEnabled": True,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": False,
        "publicClient": False,
        "frontchannelLogout": False,
        "protocol": "openid-connect",
        "attributes": {"realm_client": "True"},
        "authenticationFlowBindingOverrides": {},
        "fullScopeAllowed": False,
        "nodeReRegistrationTimeout": 0,
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
        ],
        "access": {"view": True, "configure": True, "manage": True},
    },
    {
        "id": "5e5d5c0b-46d1-454b-aa0d-e885f8290464",
        "clientId": "security-admin-console",
        "name": "${client_security-admin-console}",
        "rootUrl": "${authAdminUrl}",
        "baseUrl": "/admin/simpson-corp/console/",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "redirectUris": ["/admin/simpson-corp/console/*"],
        "webOrigins": ["+"],
        "notBefore": 0,
        "bearerOnly": False,
        "consentRequired": False,
        "standardFlowEnabled": True,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": False,
        "publicClient": True,
        "frontchannelLogout": False,
        "protocol": "openid-connect",
        "attributes": {
            "realm_client": "False",
            "client.use.lightweight.access.token.enabled": "True",
            "post.logout.redirect.uris": "+",
            "pkce.code.challenge.method": "S256",
        },
        "authenticationFlowBindingOverrides": {
            "browser": "c49c07cc-8692-4fc5-83b9-9218c142d5a5"
        },
        "fullScopeAllowed": True,
        "nodeReRegistrationTimeout": 0,
        "protocolMappers": [
            {
                "id": "bf6d0f3c-0bb2-4ebe-9b4f-edfe4439acd5",
                "name": "locale",
                "protocol": "openid-connect",
                "protocolMapper": "oidc-usermodel-attribute-mapper",
                "consentRequired": False,
                "config": {
                    "introspection.token.claim": "True",
                    "userinfo.token.claim": "True",
                    "user.attribute": "locale",
                    "id.token.claim": "True",
                    "access.token.claim": "True",
                    "claim.name": "locale",
                    "jsonType.label": "String",
                },
            }
        ],
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
        ],
        "access": {"view": True, "configure": True, "manage": True},
    },
    {
        "id": "92b51cf6-e996-4263-b375-67bcf9bab926",
        "clientId": "springfield-powerplant",
        "name": "Springfield Powerplant",
        "description": "Toh!",
        "rootUrl": "https://powerplant.springfield.nuke",
        "adminUrl": "https://powerplant.springfield.nuke",
        "baseUrl": "https://powerplant.springfield.nuke",
        "surrogateAuthRequired": False,
        "enabled": True,
        "alwaysDisplayInConsole": False,
        "clientAuthenticatorType": "client-secret",
        "redirectUris": ["https://www.keycloak.org/app/"],
        "webOrigins": ["https://www.keycloak.org"],
        "notBefore": 0,
        "bearerOnly": False,
        "consentRequired": False,
        "standardFlowEnabled": True,
        "implicitFlowEnabled": False,
        "directAccessGrantsEnabled": False,
        "serviceAccountsEnabled": False,
        "publicClient": True,
        "frontchannelLogout": True,
        "protocol": "openid-connect",
        "attributes": {
            "request.object.signature.alg": "any",
            "request.object.encryption.alg": "any",
            "client.introspection.response.allow.jwt.claim.enabled": "False",
            "standard.token.exchange.enabled": "False",
            "frontchannel.logout.session.required": "True",
            "oauth2.device.authorization.grant.enabled": "False",
            "backchannel.logout.revoke.offline.tokens": "False",
            "use.refresh.tokens": "True",
            "realm_client": "False",
            "oidc.ciba.grant.enabled": "False",
            "client.use.lightweight.access.token.enabled": "False",
            "backchannel.logout.session.required": "True",
            "request.object.required": "not required",
            "client_credentials.use_refresh_token": "False",
            "access.token.header.type.rfc9068": "False",
            "tls.client.certificate.bound.access.tokens": "False",
            "require.pushed.authorization.requests": "False",
            "acr.loa.map": "{}",
            "display.on.consent.screen": "False",
            "request.object.encryption.enc": "any",
            "token.response.type.bearer.lower-case": "False",
        },
        "authenticationFlowBindingOverrides": {
            "direct_grant": "f8adec1b-aaa0-4643-93f3-40ab566da80a"
        },
        "fullScopeAllowed": True,
        "nodeReRegistrationTimeout": -1,
        "defaultClientScopes": [
            "web-origins",
            "acr",
            "profile",
            "roles",
            "basic",
            "email",
        ],
        "optionalClientScopes": [
            "address",
            "phone",
            "organization",
            "offline_access",
            "microprofile-jwt",
            "shutdown-control",
        ],
        "access": {"view": True, "configure": True, "manage": True},
    },
]
